Which authentication types are supported by this skill?

The skill supports API keys, Role-Based Access Control (RBAC), OAuth 2.0 (including Google), JWT validation via JWKS, and fully custom authentication logic.

Can I restrict specific tools to certain users?

Yes, the skill helps you implement 'canAccess' rules to define which roles or users can execute specific tools within your server.

Does this work with any MCP server?

This specific skill is optimized for servers built using the FastMCP framework in TypeScript.

Where does it store the authentication secrets?

The skill generates a .env.example file and guides you in setting up environment variables to keep your secrets secure and out of version control.

FastMCP Authentication Setup

Name: FastMCP Authentication Setup
Author: jpoutrin

byjpoutrin

•

보안 및 테스팅

Configures robust authentication and authorization for FastMCP servers including OAuth, JWT, and API keys.

This skill automates the complex process of securing Model Context Protocol (MCP) servers built with the FastMCP framework. It streamlines the implementation of various security protocols—ranging from simple API keys to complex OAuth 2.0 and JWT validation—while allowing for granular, role-based access control (RBAC) at the tool level. By automatically locating your server file and generating the necessary TypeScript boilerplate and environment configurations, it ensures your AI-driven tools remain protected without the overhead of manual security plumbing.

주요 기능

01Automatic server file discovery and project analysis

02Supports multiple auth types including API Key, OAuth 2.0, JWT, and RBAC

03Granular tool-level authorization rules using 'canAccess' patterns

04Built-in support for Google OAuth and JWKS-based token validation

05Automated .env.example and environment variable template generation

068 GitHub stars

사용 사례

01Securing a production-grade MCP server with Google OAuth 2.0

02Implementing Role-Based Access Control for sensitive administrative MCP tools

03Quickly adding API key protection to a local FastMCP development server

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jpoutrin/product-forge setup-mcp-auth

For use in Claude.ai and ChatGPT

Download Skill